Charith Ellawala
Charith Ellawala
Netlify preview deploys don't work within a workflow because the command tries to open a browser to authenticate even when the credentials are provided in the environment. Signed-off-by: Charith Ellawala
This is a special storage driver that stacks two or more existing storage drivers together. Stores are accessed in the priority order they are defined. First hit wins. ```yaml storage:...
When we generate config documentation using [confdocs](https://github.com/cerbos/cerbos/tree/main/hack/tools/confdocs) we should be able to also produce a schema for the configuration file as well. We can then use that to validate the...
This test is flaky ``` === FAIL: client TestListPolicies (9.69s) admin_test.go:118: Error Trace: admin_test.go:118 Error: Received unexpected error: failed to send batch [0,10): rpc error: code = DeadlineExceeded desc =...
[Sigstore](https://www.sigstore.dev) is a suite of tools for software supply chain security. [Cosign](https://github.com/sigstore/cosign) the signing tool is now stable and can be used to sign and distribute containers AND binary blobs...
This test intermittently fails in CI. ``` === FAIL: client TestClient/without_tls/tcp/grpc/CheckResourceSet (0.03s) client_test.go:170: Error Trace: client_test.go:170 Error: Received unexpected error: request failed: rpc error: code = Internal desc = Policy...
Currently the compile stage only produces errors -- which cause the policy to be excluded from execution. However, there are certain problems that don't necessarily make the policy invalid (e.g....
Currently, all the policies in a compilation unit are recompiled even if only one of them has changed. This is not a problem because compilation is fast enough. However, in...
Fuzzing
Placeholder for fuzzing the engine when official fuzzer is released. It should help catch some of the rare edge cases we haven't thought of. https://blog.golang.org/fuzz-beta